Quanta LTE Router May Be Most Unsecure Router Ever Made

An anonymous reader writes: LTE routers made by Quanta Computer Incorporated, a Taiwanese hardware manufacturer, are plagued by over twenty major security flaws ranging from backdoor accounts to remote code execution bugs, from hardcoded SSH keys to undocumented diagnostics pages, and from weak WPS PINs to network eavesdropping functions. As the researcher explains: "A personal point of view: at best, the vulnerabilities are due to incompetence; at worst, it is a deliberate act of security sabotage from the vendor." The vendor has not fixed any of these issues even after almost four months.

Re:About time?

[TheReaperD]

The router market is probably one of the areas of technology that needs regulations and penalties the most. The total cost of having these insecure products on the marketplace far exceeds any benefit we get from cheap routers. These routers make it far too easy to gain access to personal data, launch DDoS attacks, replicate viruses and host criminal data with no trace which all hurt the internet as a whole. The only agency that seems to have any real authority over them is the FCC and they don't tend to deal with quality control of specific equipment, much less security. The CPSC is probably the most appropriate agency of existing ones to deal with it but, they don't seem to consider themselves in charge of equipment like this either.